Tools and Payloads

Port Scanners

• Nmap

• Masscan

• RustScan

Fuzzers

• Gobuster/Dirbuster

• wfuzz

Intercepting Proxies

• BurpSuite

• OWASP ZAP

Privilege Escalation

• Privilege escalation scripts

• Linpeas

• LinEnum

• Linux Smart Enumeration

Hash crackers

• John the Ripper

• Hydra

• Unshadow - Password and Shadow files

• Hashcat

• Online Tools

  • CrackStation

  • MD5 Decrypt

  • Hashkiller

  • Online Hash Cracker

  • Hashes

• Hash Identification Tools

  • Haiti

  • hashid

  • hash-identifier

Cryptography, Encryption, Encoding & Decoding

• CyberChef

• RSA tool

• RSA CTF Tool

Steganography

• StegHide (For JPG)

• Zsteg (For PNG)

• ExifTool (For Metadata)

• ExifTool - Web

• Stegoveritas (For JPG and PNG)

• Sonic visualizer (Spectrogram stegonography)

• Steganography Tools

• Crack the passpharse for jpg files:

  • StegCracker

  • Stegseek

Zero width Steg

• Steganographr

• Unicode Steganography

• Zero width Fingerprinting

Git Related Tools

• GitHacker

• GitHack

• GitTools

DNS Related Tools

• DNS - Exfil - Infil

• Iodine - Tunnel IPv4 data through a DNS server

• Iodine - Github

Printer Hacking Tools

• PRET - Printer Exploitation

OSINT Tools

• Wigle Net - Wifi OSINT

• FFmpeg - To extract audio/images from video

Reverse Engineering Tools

• Radare 2 - Reverse Engineering

• Rizin - Reverse Engineering

• ILSpy - .NET disassembly

• Dotpeek - .NET disassembly

Packet Analysis Tools

• WireShark

• Tshark

Buffer Overflow

• Vulnserver

• Immunity Debugger

• Mona.py

Miscellaneous Tools

• Zbar-tools (for extracting QR code from image zbarimg)

• fcrackzip (for bruteforcing zip file passwords)

• Chisel - TCP/UDP tunnel

• SQLMAP

• Metasploit

• Enum4Linux - SMB Enumeration

Payloads & Wordlists

• Seclists

• rockyou.txt

• Payload All the Things

• SQL Injection Payload List

• OWASP Cheatsheet

• XSS Payload List

• WordList CTL

• Custom WordList Generators

  • Mentalist

  • CeWL

• Password Dictionary Generators

  • TTPAssGen

• Lyric based wordlist Generator

  • Lyricpass

• Phone number based wordlist Generator

  • Pnwgen